3 matches found
Cisco Unified Communications Manager Multiple Reflected XSS
According to its self-reported version, the remote Cisco Unified Communications Manager CUCM device is affected by multiple reflected cross-site scripting vulnerabilities due to insufficient input validation of certain parameters passed via HTTP GET or POST methods. %NASLMINLEVEL 70300 C Tenable...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589...
CVE-2014-3372
CVE-2014-3372 affects Cisco Unified Communications Manager (CUCM) Server, specifically the CCM reports interface. The vulnerability is due to insufficient input validation of parameters passed via HTTP GET/POST, enabling multiple reflected XSS attacks. Impact is remote, unauthenticated exploitati...